Posts tagged ‘security’

A Link Reference From a Bing Search Result

DO NOT FOLLOW THIS LINK.  This is the top link for “update microsoft silverlight” on BING: http://r.search.yahoo.com/_ylt=A86.J7782NhVrXcAOz4nnIlQ;_ylu=X3oDMTB2NjJ0cGtlBGNvbG8DZ3ExBHBvcwMxBHZ0aWQDBHNlYwNvdi10b3A-/RV=2/RE=1440303485/RO=10/RU=http%3a%2f%2f3060131.r.msn.com%2f%3fld%3dd3YwwMmLm9a5loe999ExTN-TVUCUzS3OvEtxgfCJddTmK_SfyTq3H6K6PZUNofzSJk8VJQUgtCtU1rduX3InmhJLz6u_0kkA1wBzulWiry4-EPw5tdmZYgTYcVKQQugaR_EhsA70m4UfXr7G8hZFcfGpoODVZw7BXNSXbzrip4Ln6vFAFK%26u%3dmicrosoft-silverlight.download-assist.com%252f/RK=0/RS=qTvreU24LQSr61xlXdCxDJJ43pM-?p=microsoft+silverlight+update

ALTHOUGH

it appears to be Silverlight.Download-Assist.com [**HTML does not allow dashes, by the way.]

I entered it to mark it bad and got a drive-by, apparently.  I suspect this removed Internet Explorer (I noticed immediately but “accidentally”); I was running in Firefox anonymous mode.  I managed to mark it bad.  I apparently have a root kit.

THIS DOMAIN IS NOT REGISTERED.

I ENTERED IT TO MARK IT AND TO DEMONSTRATE THAT YOU CAN NO LONGER ACCEPT ANY TOP RESULTS.  I DID NOT NOT NOT EXPECT TO HAVE TO REINSTALL WINDOWS…I WAS WILLING TO TAKE THE CHANCE BECAUSE OF OTHER CIRCUMSTANCES.

If this convinces even one person to not accept top results from a search engine and to do some research before entering sites on the Internet, it was worthwhile.  I can do that for various reasons, starting with experience.

Because of said experience, can you guess what I’m going to do? This will be tweeted; tweet @oregonnerd if you cannot guess my next move with my poor little Acer.

If you carefully examine the link above you will find the title that I quoted you hidden.  This is a beautiful example of; SEO (Search Engine Optimization, what a misnomer), misdirection (and a version of the shell game no less)–and the insertion of a drive by virus with the **added attraction** of a stolen domain.  The moment I saw Internet Explorer missing I knew I had been hacked to some extent.  If I don’t find a virus easily I’ll reinstall–not refresh–Windows.  Well, come to think of it I do have ghosts.  This may be simple except that…it was really hard to update to 8.1 and it still hasn’t made it to 10.

August 22, 2015 at 3:31 pm Leave a comment

About botnets…

here ( http://www.malwarecity.com/blog/play-it-smart-safe-hex-241.html ) are the basic rules.  I may burn out on this after a while, but this actually is a way past many of the traps being played on the internet right now.

–Glenn

malwarecity.com/blog/play-it-smart-safe-hex-241.html

October 23, 2008 at 9:41 am Leave a comment

Secunia: Tests of Badware Protection Suites

I in particular have suggested that Threatfire, RUBotted (RU botted? as in, which is NewSpeak), and at least one or the other of WOT (Web of Trust)/Haute Secure–as well as an anti-virus application be used, along with Secunia’s free update-checker…at least.  Here is at least somewhat of a validation.  If you could, I’d suggest using more than one AV program or suite, but don’t try it because they’ll conflict, each detecting the other’s actions, with the first-installed usually coming out the winner.

I’d suggest that if you buy an anti-virus suite you use the free programs noted above.  The answer to “Why?” is in the “here” link above, to the comment by Secunia.  FileHippo, by the way, is a very poor second to checking updates on programs.

–Glenn

October 14, 2008 at 8:00 am Leave a comment

Open DNS

It works.  It’s here and read every scrap of documentation carefully.  The problem I started having was that it was knocking my (broadband) connection down all too regularly.  Threatfire goes next if this doesn’t solve it.  Of course, all I actually did was uninstall the local software, so this could get quite a bit more complicated.

–Glenn

July 19, 2008 at 9:14 pm Leave a comment

Those Windows Fixes

are all rated important.  You know, the ones your computer keeps bugging you to do? do it.  There are a total of nine bugs addressed in the four patches.  Microsoft rates them important.  There’s a DNS bug that might (unlikely, though) even affect home routers, the bug that could run a scripted file from the desktop, and an Exchange patch that all Exchange users should give highest priority.

–Glenn

July 9, 2008 at 4:48 pm Leave a comment

Keeping Your Browser Current

Do that.  A recent study shows that a mere 637 million Google users (remember, only Google users) don’t keep their browsers current.  Unfortunately, that means they’re begging for problems.  Browser updates cannot break your Operating System.  Keep your browser current.

–Glenn

July 7, 2008 at 6:49 pm Leave a comment

Warning of a critical MS Word flaw/A further word (again) on protection

Which is something very new.  It’s also astonishingly new that it leads to self-executing routines.  As I remarked there (doesn’t mean it will be allowed to show), news of worms dates to ancient times.  Like Brunner’s Shockwave Rider.  I was even alive then, not all that astonishing considering I am a Vietnam vet.

 

There’s also no tip at all given that I see as to avoid it.  You can avoid this kind of flaw in any kind of document, no matter what kind of executable file it uses.  Open and save it in a simple text editor, one that doesn’t allow for executables within it.  You’re pretty close to safe if you just open it and then immediately save it in that kind of format without taking any other actions.  Particularly don’t do any tracking of changes.  If you do that trick–saving in a *.txt-like format–delete the original.  Then do something really racy and empty your recycle bin.  And in general if there are hyperlinks in something that’s sent to you, at least google the ip address.  If you don’t know how to do that, think about not going there or just doing a search for whatever the document (or whatever you call something not in *.doc format) is, on the internet.

 

To make it simple.

 

Your default should be not to click on links in the Internet unless you’re dam’ sure you can trust ’em.  Then you should just think about it.  Carefully.

 

–Glenn

June 25, 2008 at 6:43 pm Leave a comment